Monitoring, Observability & SIEM Engineer Are you passionate about shaping the future of banking technology? A leading global financial institution is looking for an experienced Splunk Engineer with a DevOps mindset to join their Investment Banking Technology team. If you’re skilled in monitoring, observability, and SIEM solutions, and enjoy working at the intersection of cybersecurity, analytics, and infrastructure, this role could be for you About the Team Join a forward-thinking Technology department that embraces modern IT infrastructure and innovative solutions. You’ll work alongside 300 tech professionals in areas including Cybersecurity, Cloud Computing, Software Development, and IT Operations, where agile methodologies and cutting-edge technologies drive success. The tech stack includes: Splunk, Kubernetes, Docker, and Azure Cloud Programming languages like Python, Java, and TypeScript Modern tools for CI/CD and cloud-native architecture Your Role As a Splunk Engineer, you’ll design, implement, and maintain the Splunk environment, ensuring robust monitoring, security, and compliance of critical financial systems. Working closely with teams across infrastructure, InfoSec, and development, you’ll: Ensure Splunk deployment health through patch management, upgrades, and performance tuning. Develop use cases for fraud detection, transaction monitoring, and regulatory compliance. Manage log source onboarding for financial systems, security devices, and cloud environments. Optimize monitoring and detection for accurate alerts on security events and anomalies. Collaborate with incident response teams to provide actionable insights during security incidents. Align configurations with security operations, working alongside SOC analysts and IT teams. What We’re Looking For 5 years’ experience as a Splunk Engineer, preferably within financial services. Expertise in Splunk Enterprise (administration, configuration, maintenance). Proficiency with SPL, Linux scripting, Bash, and Python. Strong understanding of cybersecurity principles and regulatory standards (e.g., PCI DSS, SOX, GLBA). Experience supporting incident response and conducting root cause analysis. Familiarity with containers (Docker/Kubernetes) and capacity management concepts. Ability to work cross-functionally with IT, SOC, and security teams. What’s On Offer? Private pension plan (10% employer contribution) 30 days annual leave ⚕️ Private health insurance ⚰️ Life insurance scheme Enhanced parental leave policies ⏳ Flexible working hours ️ Employee Assistance Programme for mental, financial, and personal wellbeing